Skip to content

Hi, I’ll be your ransomware negotiator today – but don’t tell the crooks that

Posted by: GuidePoint Security

< 1 min read

August 6, 2022 – Published on The Register

The first rule of being a ransomware negotiator is that you don’t admit you’re a ransomware negotiator — at least not to LockBit or another cybercrime gang. 

Instead, these negotiators portray themselves as simply company representatives, said Drew Schmitt, a professional ransomware negotiator and principal threat analyst at cybersecurity firm GuidePoint Security.

“The biggest reason is because most ransomware groups specifically and explicitly say: ‘We don’t want to work with a negotiator. If you do bring a negotiator to the table, we’re just going to post your stuff anyway,'” Schmitt told The Register. Hence the need to masquerade as a regular employee.

Read More HERE.

Categories: Cybersecurity Incident Response & Threat Intelligence
Tags:GRIT

GuidePoint Security

GRIT Ransomware Report-2022-Q2
April – June 2022 The second quarter of 2022 demonstrated some interesting activity in the ransomware world. We saw a […]
Download Now

Related Articles

View All

  • Incident Response & Threat Intelligence
GRIT Ransomware Report-2022-Q2
Read More < 1 min read
  • Incident Response & Threat Intelligence
Reckoning with Ransomware
Read More 2 min read
  • Incident Response & Threat Intelligence
Ransomware: To Pay Or Not To Pay, That Is The Question | A Conversation With Mark Lance | The National Blast With Keenan Skelly
Read More < 1 min read